Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
emlog vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-43267
A cross-site scripting (XSS) vulnerability in the publish article function of emlog pro v2.1.14 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the title field.
Emlog Emlog 2.1.14
6.5
CVSSv2
CVE-2020-21013
emlog v6.0.0 contains a SQL injection via /admin/comment.php.
Emlog Emlog 6.0.0
4.3
CVSSv2
CVE-2020-21321
emlog v6.0 contains a Cross-Site Request Forgery (CSRF) via /admin/link.php?action=addlink, which allows malicious users to arbitrarily add articles.
Emlog Emlog 6.0.0
NA
CVE-2023-44973
An arbitrary file upload vulnerability in the component /content/templates/ of Emlog Pro v2.2.0 allows malicious users to execute arbitrary code via uploading a crafted PHP file.
Emlog Emlog 2.2.0
NA
CVE-2023-44974
An arbitrary file upload vulnerability in the component /admin/plugin.php of Emlog Pro v2.2.0 allows malicious users to execute arbitrary code via uploading a crafted PHP file.
Emlog Emlog 2.2.0
NA
CVE-2022-42189
Emlog Pro 1.6.0 plugins upload suffers from a remote code execution (RCE) vulnerability.
Emlog Emlog 1.6.0
NA
CVE-2020-19028
*File Upload vulnerability found in Emlog EmlogCMS v.6.0.0 allows a remote malicious user to gain access to sensitive information via the /admin/plugin.php function.
Emlog Emlog 6.0.0
7.5
CVSSv2
CVE-2021-40883
A Remote Code Execution (RCE) vulnerability exists in emlog 5.3.1 via content/plugins.
Emlog Emlog 5.3.1
7.5
CVSSv2
CVE-2022-23379
Emlog v6.0 exists to contain a SQL injection vulnerability via the $TagID parameter of getblogidsfromtagid().
Emlog Emlog 6.0.0
7.5
CVSSv2
CVE-2020-21585
Vulnerability in emlog v6.0.0 allows user to upload webshells via zip plugin module.
Emlog Emlog 6.0.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-26978
CVE-2024-26982
wireless
CVE-2023-6949
CVE-2024-26980
CVE-2024-32766
CVE-2024-26939
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »